24 matches found
EUVD-2005-2808
Malware in sbrugna...
EUVD-2005-2809
Malware in sbrugna...
EUVD-2001-0919
Malware in sbrugna...
CVE-2005-2807
frox 0.7.18, when running setuid root, does not properly drop privileges when reading a configuration file, which allows local users to read portions of arbitrary files via the -f command line option...
CVE-2005-2808
frox 0.7.16 and 0.7.17 does not properly parse certain Deny ACLs, which might allow attackers to bypass intended restrictions and access blocked hosts...
Frox 0.7.18 Arbitrary Configuration File Access Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14711/info Frox is prone to a vulnerability that permits read access to arbitrary files. Successful exploitation of this vulnerability will grant the attacker read access to arbitrary files on the system in the security...
CVE-2005-2807
frox 0.7.18, when running setuid root, does not properly drop privileges when reading a configuration file, which allows local users to read portions of arbitrary files via the -f command line option...
CVE-2005-2808
frox 0.7.16 and 0.7.17 does not properly parse certain Deny ACLs, which might allow attackers to bypass intended restrictions and access blocked hosts...
CVE-2005-2808
frox 0.7.16 and 0.7.17 does not properly parse certain Deny ACLs, which might allow attackers to bypass intended restrictions and access blocked hosts...
CVE-2005-2807
frox 0.7.18, when running setuid root, does not properly drop privileges when reading a configuration file, which allows local users to read portions of arbitrary files via the -f command line option...
CVE-2005-2807
frox 0.7.18, when running setuid root, does not properly drop privileges when reading a configuration file, which allows local users to read portions of arbitrary files via the -f command line option...
CVE-2005-2808
frox 0.7.16 and 0.7.17 does not properly parse certain Deny ACLs, which might allow attackers to bypass intended restrictions and access blocked hosts...
CVE-2005-2807
CVE-2005-2807 affects frox 0.7.18. When running setuid root, it does not properly drop privileges while reading a configuration file, allowing local users to read portions of arbitrary files via the -f option. The linked Red Hat, Ubuntu, and NVD entries corroborate the local, file-read impact but...
CVE-2005-2808
CVE-2005-2808 affects frox 0.7.16 and 0.7.17. A flaw in parsing Deny ACLs may let an attacker bypass restrictions and reach blocked hosts. Root cause: improper handling of Deny ACLs. CVSS details indicate network access, no authentication, low complexity, and partial impacts to confidentiality, i...
froxRead.txt
= c1zc0 Security advisory 1 = = Frox transparent froxy / cache = = found by rotor irc.efnet.org c1zc0 = = http://c1zc0.com - c1zc0 Security 2005 = Package: frox Frox Author: James Hollingshead Download Site: http://frox.sourceforge.net Vulnrability: File aribitary read access Frox is a transparen...
Frox 0.7.18 - Arbitrary Configuration File Access
Frox 0.7.18 - Arbitrary Configuration File Access source: https://www.securityfocus.com/bid/14711/info Frox is prone to a vulnerability that permits read access to arbitrary files. Successful exploitation of this vulnerability will grant the attacker read access to arbitrary files on the system i...
Frox 0.7.18 - Arbitrary Configuration File Access
source: https://www.securityfocus.com/bid/14711/info Frox is prone to a vulnerability that permits read access to arbitrary files. Successful exploitation of this vulnerability will grant the attacker read access to arbitrary files on the system in the security context of the Frox process...
[SA14182] Frox Deny ACL Security Bypass Vulnerability
TITLE: Frox Deny ACL Security Bypass Vulnerability SECUNIA ADVISORY ID: SA14182 VERIFY ADVISORY: http://secunia.com/advisories/14182/ CRITICAL: Moderately critical IMPACT: Security Bypass WHERE: From remote SOFTWARE: Frox 0.x http://secunia.com/product/4619/ DESCRIPTION: A vulnerability has been...
Frox transparent FTP proxy protection bypass
Deny ACLs may not work properly...
CVE-2001-0936
Buffer overflow in Frox transparent FTP proxy 0.6.6 and earlier, with the local caching method selected, allows remote FTP servers to run arbitrary code via a long response to an MDTM request...